Use GraphApi to search using an AzureAD SID - SecurityIdentifier?

Question

Use GraphApi to search using an AzureAD SID - SecurityIdentifier?

Phil Crombie 0

Noob user here. Im struggling to search AzureAD using GraphAPI to find a group name using its SecurityIDentifier.
I can return group names and sid values using
https://graph.microsoft.com/v1.0/groups?$select=displayName,securityIdentifier
But due to the number of groups and pagination, i cant subsequently just use find for the sid/group name.
Is there a way to use filter of something to enter the SID value to return one value ?
Thanks in advance

:)

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2023-02-14T06:36:29.8333333+00:00

Hi @Phil Crombie ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click Accept Answer which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

Thanks, Shweta
JamesTran-MSFT 36,906 Reputation points Microsoft Employee Moderator

2023-02-23T23:59:23.28+00:00

Hi @pcrombie ,

I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

2 answers

Your answer

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2023-02-14T06:36:29.8333333+00:00

Hi @Phil Crombie ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click Accept Answer which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

Thanks, Shweta
JamesTran-MSFT 36,906 Reputation points Microsoft Employee Moderator

2023-02-23T23:59:23.28+00:00

Hi @pcrombie ,

I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

Answer 1

Vasil Michev 119.5K MVP Volunteer Moderator

Sure, you can use the $filter operator. Here's an example for a given SID:

GET https://graph.microsoft.com/v1.0/groups?$filter=securityIdentifier eq 'S-1-12-1-143658405-1084415652-4082819753-371914418'

Keep in mind that not every property is filterable though. And some of them require "advanced" filters, as detailed here.

Oh and if you want to return only a single property and not the full object, use something like this:

GET https://graph.microsoft.com/v1.0/groups?$filter=securityIdentifier eq 'S-1-12-1-143658405-1084415652-4082819753-371914418'&$select=displayName

Phil Crombie 0 Reputation points

2023-02-06T16:59:59.64+00:00

Hi and thanks for taking the time to reply. From the document you supplied it looks like securityidentifier is not filterable :(
Is there a way to return all results to a csv ?
I tried using postman, but it spits it out paginated in json so excel cant read it.
Thinking if I can get all the results using select and just their name and sid , I can use Excel magic to find the sid I need.
DO you have any idea how to do that? Many thanks :) :)

Answer 2

Shweta Mathur 30,296 Microsoft Employee Moderator

Hi @Phil Crombie ,

Thanks for reaching out.

I understand you are trying filter securityidentfier from large number of groups using Graph API.

As @Vasil Michev mentioned, you can easily filter using security identifier as below which will provide result based on filter.

User's image

If you still have query regarding this. please let us know to help you further.

Thanks,

Shweta

Please remember to "Accept Answer" if answer helped you.

Share via

Use GraphApi to search using an AzureAD SID - SecurityIdentifier?

2 answers

Your answer